OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-04 02:25:24 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,056 Commits 1 Branch 0 Tags
c73804f60fa74e5f75a7b31906e6355d23e8a19f
Commit Graph

1056 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sergey "Shnatsel" Davidoff
c73804f60f Merge pull request #706 from JOE1994/0066-kekbit 
kekbit: ShmWriter allows sending non-Send type across threads
 2021-01-30 19:05:02 +01:00
Sergey "Shnatsel" Davidoff
c5d9a00ed6 Merge pull request #707 from JOE1994/0065-v9 
v9: SyncRef's clone() and debug() allow data races
 2021-01-30 19:04:45 +01:00
JOE1994
1dfb30f0d3 Report 0065-v9 to RustSec 2021-01-27 12:26:52 -05:00
JOE1994
1446b62471 Report 0066-kekbit to RustSec 2021-01-27 12:11:22 -05:00
Sergey "Shnatsel" Davidoff
d663790b8c Merge pull request #703 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0123 to libp2p-deflate
 2021-01-27 17:06:14 +01:00
Shnatsel
01c694c922 Assigned RUSTSEC-2020-0123 to libp2p-deflate 2021-01-27 16:03:41 +00:00
Sergey "Shnatsel" Davidoff
10062201a1 Merge pull request #700 from JOE1994/0110-libp2p-deflate 
libp2p-deflate: Undefined data exposed in DeflateOutput's AsyncRead implementation
 2021-01-27 17:03:04 +01:00
Sergey "Shnatsel" Davidoff
f48660ee6c Merge pull request #701 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0014 to marc
 2021-01-27 17:02:57 +01:00
Sergey "Shnatsel" Davidoff
0788bf440f reword title 2021-01-27 17:02:15 +01:00
Shnatsel
4ee140687f Assigned RUSTSEC-2021-0014 to marc 2021-01-27 16:01:52 +00:00
Sergey "Shnatsel" Davidoff
5f1f4ed3c2 Merge pull request #699 from JOE1994/0113-marc 
marc: Record::read : Custom `Read` on uninitialized buffer may cause UB
 2021-01-27 17:01:14 +01:00
JOE1994
868651a1c2 Report 0110-libp2p-deflate to RustSec 2021-01-27 10:46:49 -05:00
JOE1994
8c9978e15d Report 0113-marc to RustSec 2021-01-27 10:31:15 -05:00
github-actions[bot]
39a88f9c63 Assigned RUSTSEC-2020-0122 to beef (#697) 
Co-authored-by: tarcieri <tarcieri@users.noreply.github.com>
 2021-01-26 20:24:29 -05:00
Youngsuk Kim
8f6dc8608a beef: beef::Cow lacks a Sync bound on its Send trait allowing for data races (#696) 2021-01-26 17:21:19 -08:00
Tony Arcieri
049df72e54 Bump rustsec-admin to v0.3.4 (#695) 2021-01-26 12:50:49 -08:00
Sergey "Shnatsel" Davidoff
773a35e313 Merge pull request #689 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0121 to abox
 2021-01-25 18:22:34 +01:00
Shnatsel
b24162aeec Assigned RUSTSEC-2020-0121 to abox 2021-01-25 17:21:38 +00:00
Sergey "Shnatsel" Davidoff
9fffafaa84 Merge pull request #688 from JOE1994/0031-abox 
abox: AtomicBox<T> implements Send/Sync for any `T: Sized`
 2021-01-25 18:21:02 +01:00
JOE1994
d88f06e253 Report 0031-abox to RustSec 2021-01-25 10:44:44 -05:00
Sergey "Shnatsel" Davidoff
2f59446902 Merge pull request #686 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0120 to libsbc
 2021-01-25 15:42:26 +01:00
Shnatsel
3880134a54 Assigned RUSTSEC-2020-0120 to libsbc 2021-01-25 14:41:19 +00:00
Sergey "Shnatsel" Davidoff
80a200c050 Merge pull request #679 from JOE1994/0027-libsbc 
libsbc: Decoder<R> can carry `R: !Send` to other threads
 2021-01-25 15:40:45 +01:00
Youngsuk Kim
0850c3b0d3 Clarify description for issue found in 'libsbc' 2021-01-25 09:39:39 -05:00
Sergey "Shnatsel" Davidoff
860dacd16d Merge pull request #684 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0119 to ticketed_lock
 2021-01-25 14:21:40 +01:00
Shnatsel
99c934de96 Assigned RUSTSEC-2020-0119 to ticketed_lock 2021-01-25 13:20:14 +00:00
Sergey "Shnatsel" Davidoff
e4b62ba529 Merge pull request #678 from JOE1994/0048-ticketed_lock 
ticketed_lock: ReadTicket and WriteTicket should only be sendable when T is Send
 2021-01-25 14:19:40 +01:00
Sergey "Shnatsel" Davidoff
bf96ab9fd9 Merge pull request #682 from davidkna/patch-1 
sys-info: Add patched version for RUSTSEC-2020-0100
 2021-01-25 14:19:04 +01:00
David Knaack
99758fa158 Add patched version for RUSTSEC-2020-0100 2021-01-25 13:28:21 +01:00
JOE1994
735a9dbbe2 Report 0027-libsbc to RustSec 2021-01-24 21:52:25 -05:00
JOE1994
a4abf5bb3f Report 0048-ticketed_lock to RustSec 2021-01-24 20:19:27 -05:00
Sergey "Shnatsel" Davidoff
0290f2ba88 Merge pull request #676 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0118 to tiny_future
 2021-01-25 00:45:28 +01:00
Shnatsel
0aec292a5c Assigned RUSTSEC-2020-0118 to tiny_future 2021-01-24 23:44:45 +00:00
Sergey "Shnatsel" Davidoff
5b856c10b8 Merge pull request #675 from ammaraskar/tiny_future 
[patched] Add advisory for data race in tiny_future
 2021-01-25 00:44:13 +01:00
Ammar Askar
4bfa224c9f Add advisory for data race in tiny_future 2021-01-24 15:36:47 -08:00
Sergey "Shnatsel" Davidoff
b8c3c5e244 Merge pull request #673 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0117 to conqueue
 2021-01-24 23:03:55 +01:00
Shnatsel
4350ed71c7 Assigned RUSTSEC-2020-0117 to conqueue 2021-01-24 22:02:11 +00:00
Sergey "Shnatsel" Davidoff
261241340c Merge pull request #672 from JOE1994/0032-conqueue 
conqueue: QueueSender's Send trait and Sync trait should have bounds
 2021-01-24 23:01:38 +01:00
JOE1994
92a9ea5f21 Report 0032-conqueue to RustSec 2021-01-24 16:13:12 -05:00
Sergey "Shnatsel" Davidoff
f32aab0bba Merge pull request #669 from RustSec/assign-ids 
Assigned RUSTSEC-2021-0013 to raw-cpuid
 2021-01-24 21:27:26 +01:00
Shnatsel
dd9f177956 Assigned RUSTSEC-2021-0013 to raw-cpuid 2021-01-24 20:26:39 +00:00
Sergey "Shnatsel" Davidoff
b33006702b Merge pull request #614 from niklasf/raw-cpuid 
raw-cpuid: Multiple soundness issues
 2021-01-24 21:26:11 +01:00
Niklas Fiekas
2e01144dc4 prepare first part of raw-cpuid advisory, add solutions 2021-01-24 21:24:39 +01:00
Sergey "Shnatsel" Davidoff
aba18b27ed Merge pull request #667 from mitsuhiko/feature/add-similar 
Add similar suggestion to difference.rs
 2021-01-24 20:53:50 +01:00
Armin Ronacher
c0b7f03250 Add similar suggestion to difference.rs 2021-01-24 20:50:18 +01:00
Sergey "Shnatsel" Davidoff
71114d262e Merge pull request #657 from RustSec/assign-ids 
Assigned RUSTSEC-2020-0116 to unicycle, RUSTSEC-2021-0012 to cdr
 2021-01-24 17:03:46 +01:00
Shnatsel
5b0a58befb Assigned RUSTSEC-2020-0116 to unicycle, RUSTSEC-2021-0012 to cdr 2021-01-24 16:03:19 +00:00
Sergey "Shnatsel" Davidoff
4ef3fb33fb Merge pull request #655 from JOE1994/0041-unicycle 
unicycle: PinSlab<T> and Unordered<T, S> need bounds on their Send/Sync traits
 2021-01-24 17:02:47 +01:00
Sergey "Shnatsel" Davidoff
2b91d6dd5c Merge pull request #656 from JOE1994/0085-cdr 
cdr: Reading uninitialized memory can cause UB (`Deserializer::read_vec`)
 2021-01-24 17:02:17 +01:00
JOE1994
d5dac477ee Report 0085-cdr to RustSec 2021-01-24 07:31:17 -05:00